email SPF

exchange 2010 primary domain use, but set to accept a few other domains.  Users with a nonprimarydomain.com address are getting mail rejected for some sends by another outside server. Trying to understand the best way to change SPF record  and the format\syntax for the change and most importantly for which domain to edit/add the SPF record?
dee30Asked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
BlueComputeConnect With a Mentor Commented:
Hi dee30,

start off by checking your current SPF records here: http://www.kitterman.com/spf/validate.html
Enter nonprimarydomain.com in the top box and click 'Get SPF record (if any)'.

Can you post any NDRs you have received for rejected mail?
0
 
arrorynConnect With a Mentor Commented:
SPF records needed to be amended in the DNS record for your primary domain. If you do not have access to your host server (or host DNS records) then you will need to request this from your hosting company.

Assuming the other domains do not have their own MX records and you only use the primary domain,

v=spf1 include:alternativedomain.com ~all

Your full SPF record should look as follows:

v=spf1 include:_spf.primarydomain.com include:secondarydomain.com ?all (adding as many domains as needed).
0
 
arrorynCommented:
I would also suggest you then use MX Toolbox or similar to complete SPF checks on the domain.
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 
dee30Author Commented:
okay understanding more...thx and here is a little bit more info...

primarydomain.com and the three exchang2010alsoacceptedomains.com  all have the same MX records set that reference primarydomain.inboundblahblah.net priority 10.

So I need to edit/add SPF under primarydomain.com DNS manager?
The FULL exmple listed by arroryn?

Let me know if off/still not getting it.

Thank You.
0
 
Simon Butler (Sembee)Connect With a Mentor ConsultantCommented:
SPF records are for outbound email only.
Therefore you need SPF records in all domains that you are sending email from. These would all reference the same hosts as being authorised to send email.

Simon.
0
 
dee30Author Commented:
I setup the txt SPF record for the alternativedomain.com to read as follows:

v=spf1 +a +mx ptr:primarydomain.com -all

waiting for the change to propogate.  

Thank you for giving me a better understanding, allt that did.   unless further corrections/comment will close and assign points next.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.